Published:2006/07/03 Last Updated:2006/07/03
JVN#98836916
Wiki clone products vulnerable to denial of service attacks
Overview
Wiki clones allow a user via a web browser to edit documents on the web server. Some products of Wiki clones contain a vulnerability which consumes large amounts of CPU and memory resources when handling a particular request.
Products Affected
For more information, refer to the vendors' websites.
Description
Impact
A remote attacker could execute a DoS (denial of service) attack.
Solution
Vendor Status
| Vendor | Status | Last Update | Vendor Notes |
|---|---|---|---|
| freestyle-wiki | vulnerable | 2006/07/04 | |
| hiki | vulnerable | 2006/07/03 | |
| iwatsuki | vulnerable | 2006/07/03 |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Credit
Akira Tanaka of National Institute of Advanced Industrial Science and Technology (AIST), Japan reported this vulnerability to IPA.
JPCERT/CC coordinated with the vendors under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE | |
| JVN iPedia |
JVNDB-2006-000629 |